May 13 2008 12:18PM Patti, Hewitt & flrezina 13123462810 p. 8 



2 LUC-469/Dombkowski 11-16 

AMENDMENTS TO THE CLAMS f ^ 

MAY 1 3 2008 

1 1 . (Currently amended) An apparatus, comprising: 

2 an authentication device that authenticates a computing device, in 

3 communication with the authentication device, through employment of a determination 

4 that a current location of the authentication device matches an initial location of the 

5 authentication device; 

6 wherein one or more private keys employable for encryption and/or decryption of 

7 information are erased via a cutoff of power upon an attempt to move the authentication 

8 device. 



1 2. (Previously presented) The apparatus of claim 1, wherein the computing 

2 device comprises a first computing device; and 

3 wherein the authentication device makes the determination that the current 

4 location of the authentication device matches the initial location of the authentication 



in response to a request from a second computing device for authentication of 

6 the first computing device for a data transfer from the second computing device to the 

7 first computing device. 



1 3. (Previously presented) The apparatus of claim 2, wherein the request from 

2 the second computing device comprises an authentication challenge string; and 
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3 wherein the authentication device stores the one or more private keys, and 

4 wherein if the current location of the authentication device matches the initial location of 

5 the authentication device, then the authentication device employs one or more of the 

6 one or more private keys to decrypt the authentication challenge string into an 

7 authentication challenge response. 

1 4. (Previously presented) The apparatus of claim 3, wherein the 

2 authentication device sends the authentication challenge response to the second 

3 computing device, and wherein the second computing device analyzes the 

4 authentication challenge response to determine whether the first computing device is 

5 authenticated for the data transfer. 

1 5. (Previously presented) The apparatus of claim 4, wherein the second 

2 computing device comprises an authentication challenge key to compare with the 

3 authentication challenge response received from the authentication device; and 

4 wherein if the authentication challenge response matches the authentication 

5 challenge key, then the authentication challenge response represents that the first 

6 computing device is authenticated and the data transfer can be sent from the second 

7 computing device to the first computing device. 

1 6. (Original) The apparatus of claim 3, wherein upon determination that the 

2 current location of the authentication device does not match the initial location of the 

3 authentication device, the authentication device prevents authentication of the first 

4 computing device and disables the one or more private keys. 
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1 7. (Previously presented) The apparatus of claim 6 3 wherein the 

2 authentication device stores the one or more private keys in volatile memory, and 

3 wherein upon determination that the current location of the authentication device does 

4 not match the initial location of the authentication device, the authentication device cuts 

5 off power to the volatile memory to erase the one or more private keys. 



1 8. (Previously presented) The apparatus of claim 1, wherein the 

2 authentication device comprises a base portion, a cover portion, and one or more 

3 electronic components that serve to authenticate the computing device; and 

4 wherein the base portion is fixed to a surface near the computing device, and 

5 wherein the cover portion is fixed to the base portion to provide a secure shell for the 

6 one or more electronic components. 



1 9. (Previously presented) The apparatus of claim 8, wherein a first one of the 

2 base and cover portions receives electricity through a power port, and wherein a second 

3 one of the base and cover portions receives electricity through an electrical contact with 

4 the first one of the base and cover portions; and 

5 wherein upon separation of the second one of the base and cover portions from 

6 the first one of the base and cover portions, the second one of the base and cover 

7 portions loses power and prevents authentication of the computing device. 
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« 

1 10, (Previously presented) The apparatus of claim 9, wherein Hie second one 

2 of the base and cover portions electrically supports one or more of the one or more 

3 electronic components that store the one or more private keys, and wherein the 

4 authentication device employs one or more of the one or more private keys to 

5 authenticate the computing device; and 

6 wherein a loss of power in the second one of the base and cover portions erases 

7 the one or more private keys from the one or more of the one or more electronic 

8 components. 



1 11. (Previously presented) The apparatus of claim 1, wherein the 

2 authentication device comprises a location sensor; and 

3 wherein upon initialization of the authentication device, the location sensor sets 

4 the initial location of the authentication device; and 

i 

5 wherein the location sensor determines the current location of the authentication 

6 device, and wherein the authentication device compares the current location with the 

7 initial location to authenticate the computing device. 

1 12. (Previously presented) The apparatus of claim 11, wherein the location 

2 sensor comprises a global positioning system component, and wherein the global 

3 positioning system component measures the initial location and the current location of 

4 the authentication device as a three-dimensional location of latitude, longitude, and 

5 altitude. 
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1 13. (Original) The apparatus of claim 1, wherein the authentication device 

2 allows authentication of the computing device upon the determination that the current 

3 location of the authentication device matches the initial location of the authentication 

4 device within a specified error range. 



1 14. (Currently amended) A method, comprising the steps of: 

2 receiving a request from a second computing device to authenticate a first 

3 computing device for a data transfer from the second computing device to the first 

4 computing device; 

5 determining a current location of an authentication device, in communication with 

6 the first computing device, in response to the request from the second computing 

7 device; and 

8 authenticating the first computing device if the current location of the 

9 authentication device matches an initial location of the authentication device; 

10 wherein one or more private keys employable for encryption and/or decryption of 

1 1 information are erased via a cutoff of power upon an attempt to move the authentication 

12 device. 



1 1 5. (Previously presented) The method of claim 14, wherein the request from 

2 the second computing device comprises an authentication challenge string, and wherein 

3 the step of authenticating the first computing device if the current location of the 

4 authentication device matches the initial location of the authentication device comprises 

5 the steps of: 
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6 comparing the current location of the authentication device with the initial location 

7 of the authentication device; and 

8 employing, if the current location of the authentication device matches the initial 

9 location of the authentication device, the one or more private keys to decrypt the 
10 authentication challenge string into an authentication challenge response. 

1 1 6. (Original) The method of claim 1 5, further comprising the steps of: 

2 sending the authentication challenge response to the second computing device; 

3 and 

4 analyzing the authentication challenge response to determine whether the first 

5 computing device is authenticated for the data transfer from the second computing 

6 device to the first computing device. 

« 

1 17. (Original) The method of claim 16, wherein the step of analyzing the 

2 authentication challenge response to determine whether the first computing device is 

3 authenticated for the data transfer from the second computing device to the first 

4 computing device comprises the steps of: 

5 comparing the authentication challenge response with an authentication 

6 challenge key; and 

7 determining that the data transfer can be sent from the second computing device 

8 to the first computing device if the authentication challenge response matches the 

9 authentication challenge key. 

1 1 8. (Original) The method of claim 1 5 , further comprising the steps of: 

2 storing the one or more private keys in volatile or non-volatile memory; and 
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3 erasing the one or more private keys upon determination that the current location 

4 of the authentication device does not match the initial location of the authentication 

5 device. 

1 1 9. (Original) The method of claim 1 5, farther comprising the steps of: 

2 storing the one or more private keys in volatile memory; and 

3 discontinuing a power supply to the volatile memory to erase the one or more 

4 private keys upon determination that the current location of the authentication device 

5 does not match the initial location of the authentication device. 

1 20. (Original) The method of claim 14, wherein the authentication device 

2 comprises a base portion, a cover portion, and one or more electronic components that 

3 store one or more private keys employable to authenticate the first computing device, 

4 the method further comprising the steps of: 

5 attaching the base portion to a surface near the first computing device; 

6 attaching the cover portion to the base portion to provide a secure shell for the 

7 one or more electronic components; and 

8 erasing the one or more private keys if the cover portion is removed from the 

9 base portion. 

1 21 . (Previously presented) The method of claim 14, wherein the authentication 

2 device comprises a base portion, a cover portion, and one or more electronic 

3 components that serve to authenticate the first computing device, the method further 

4 comprising the steps of: 

5 attaching the base portion to a surface near the first computing device; 
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6 attaching the cover portion to the base portion to provide a secure shell for the 

7 one or more electronic components; 

8 connecting a first one of the base and cover portions to a power supply; 

9 connecting a second one of the base and cover portions to the power supply 

10 through an electrical contact with the first one of the base and cover portions; 

1 1 electrically supporting, with the second one of the base and cover portions, one 

12 or more of the one or more electronic components that store the one or more private 

13 keys; and 

14 disconnecting the power supply from one or more of the one or more electronic 

15 components to erase the one or more private keys if the current location of the 

16 authentication device does not match the initial location of the authentication device. 

1 22. (Currently amended) A computer-readable medium having computer 

2 executable instructions for performing steps, comprising: 

3 means in the computer-readable medium for receiving a request from a second 

4 computing device to authenticate a first computing device for a data transfer from the 

5 second computing device to the first computing device; 

6 means in the computer-readable medium for determining a current location of an 

7 authentication device, in communication with the first computing device, in response to 

8 the request from the second computing device; and 

9 means in the computer-readable medium for authenticating the first computing 

10 device if the current location of the authentication device matches an initial location of 

1 1 the authentication device; 
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12 wherein one or more private keys employable for encryption and/or decryption of 

13 Information are erased via a cutoff of power upon an attempt to move the authentication 

14 device. 

1 23. (Previously presented) The apparatus of claim 1 , wherein the one or more 

2 private keys are erased upon an attempt to open the authentication device. 

1 24, (Previously presented) The apparatus of claim 1, wherein the one or more 

2 private keys are erased via a cutoff of power upon the attempt to a) open the 

3 authentication device or b) move the authentication device. 

1 25. (Previously presented) The apparatus of claim 1, wherein the one or more 

2 private keys are erased via a cutoff of power upon an attempt to open the authentication 

3 device. 
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